Fraud & Security

This page lists all the SRS Fraud & Security tasks. Each task includes instructions, parameters, sample requests, and potential system responses.

Get Merchant Fraud Emails

The GetMerchantFraudEmails request provides information about all of the email addresses you have blocked on your Segpay merchant account.

HTTP Get Request

Use this URL to make the request. Replace each parameter stringwith your actual values.

Copy 
https://srs.segpay.com/MWS.asmx/GetMerchantFraudEmails?UserID=string&UserAccessKey=string

Parameters

List of parameters used with this HTTP request.

Parameter Description
UserID Your username to access Segpay Reporting Services (SRS).
UserAccessKey Your unique key to access Segpay Reporting Services (SRS).

XML

Example of HTTP request response.

Copy 
<diffgr:diffgram xmlns:msdata="urn:schemas-microsoft-com:xml-msdata" xmlns:diffgr="urn:schemas-microsoft-com:xml-diffgram-v1">
                    <NewDataSet xmlns="">
                    <Data diffgr:id="Data1" msdata:rowOrder="0">
                    <Email>BJM345@green.com</Email>
                    <Reason>Poor Quality</Reason>
                    <Comment>FraudTest</Comment>
                    <AddedDate>2012-02-07T19:41:23.407+00:00</AddedDate>
                    <AddedByIPAddress>65.97.149.194</AddedByIPAddress>
                    <UserID>Segpay</UserID>
                    </Data>
                    <Data diffgr:id="Data2" msdata:rowOrder="1">
                    <Email>RedOne11@blue.com</Email>
                    <Reason>Fraud</Reason>
                    <Comment>FraudTest</Comment>
                    <AddedDate>2012-02-07T16:54:21.097+00:00</AddedDate>
                    <AddedByIPAddress>65.97.149.194</AddedByIPAddress>
                    <UserID>Segpay</UserID>
                    </Data>
                    <Data diffgr:id="Data3" msdata:rowOrder="2">
                    <Email>JJ4ever@orange.com</Email>
                    <Reason>Fraud</Reason>
                    <Comment>UATtest</Comment>
                    <AddedDate>2019-09-24T14:14:38.083+00:00</AddedDate>
                    <AddedByIPAddress>50.234.58.218</AddedByIPAddress>
                    <UserID>Segpay</UserID>
                    </Data>
                    </NewDataSet>
                </diffgr:diffgram>

Get Merchant Fraud IP Addresses

The GetMerchantFraudIPAddress request provides information about all of the IP addresses you have blocked on your Segpay merchant account.

HTTP Get Request

Use this URL to make the request. Replace each parameter stringwith your actual values.

Copy 
https://srs.segpay.com/MWS.asmx/GetMerchantFraudIPAddress?UserID=string&UserAccessKey=string

Parameters

List of parameters used with this HTTP request.

Parameter Description
UserID Your username to access Segpay Reporting Services (SRS).
UserAccessKey Your unique key to access Segpay Reporting Services (SRS).

XML

Example of HTTP request response.

Copy 
<diffgr:diffgram xmlns:msdata="urn:schemas-microsoft-com:xml-msdata" xmlns:diffgr="urn:schemas-microsoft-com:xml-diffgram-v1">
                    <NewDataSet xmlns="">
                    <Data diffgr:id="Data1" msdata:rowOrder="0">
                    <IPAddress>1.2.3.4</IPAddress>
                    <Reason>Fraud</Reason>
                    <Comment>DoesitWork</Comment>
                    <AddedDate>2016-05-18T14:42:08.75+00:00</AddedDate>
                    <AddedByIPAddress>192.168.140.51</AddedByIPAddress>
                    <UserID>Segpay</UserID>
                    </Data>
                    <Data diffgr:id="Data2" msdata:rowOrder="1">
                    <IPAddress>1.2.3.7</IPAddress>
                    <Reason>Fraud</Reason>
                    <Comment>UATtest</Comment>
                    <AddedDate>2019-09-24T14:23:09.22+00:00</AddedDate>
                    <AddedByIPAddress>50.234.58.218</AddedByIPAddress>
                    <UserID>Segpay</UserID>
                    </Data>
                    <Data diffgr:id="Data3" msdata:rowOrder="2">
                    <IPAddress>192.168.1.101</IPAddress>
                    <Reason>Other</Reason>
                    <Comment>FraudTest</Comment>
                    <AddedDate>2012-02-07T16:54:56.75+00:00</AddedDate>
                    <AddedByIPAddress>65.97.149.194</AddedByIPAddress>
                    <UserID>Segpay</UserID>
                    </Data>
                    </NewDataSet>
                    </diffgr:diffgram>
                </DataSet>

Get Postback IP List

The GetPostbackIPList request generates a list of IP addresses for your Segpay postbacks. This is particularly useful for IP whitelisting for your server, firewall, or other security systems.

HTTP Get Request

Use this URL to make the request. Replace each parameter stringwith your actual values.

Copy 
https://srs.segpay.com/adm.asmx/GetPostbackIPList?Userid=string&UserAccessKey=string

Parameters

List of parameters used with this HTTP request.

Parameter Description
UserID Your username to access Segpay Reporting Services (SRS).
UserAccessKey Your unique key to access Segpay Reporting Services (SRS).

XML

Example of HTTP request response.

Copy 
<diffgr:diffgram xmlns:msdata="urn:schemas-microsoft-com:xml-msdata" xmlns:diffgr="urn:schemas-microsoft-com:xml-diffgram-v1">
                <NewDataSet xmlns="">
                <Table diffgr:id="Table1" msdata:rowOrder="0">
                <IPADDRESS>170.55.6.66</IPADDRESS>
                </Table>
                <Table diffgr:id="Table2" msdata:rowOrder="1">
                <IPADDRESS>72.32.181.75</IPADDRESS>
                </Table>
                <Table diffgr:id="Table3" msdata:rowOrder="2">
                <IPADDRESS>72.32.60.190</IPADDRESS>
                </Table>
                <Table diffgr:id="Table4" msdata:rowOrder="3">
            <IPADDRESS>72.32.181.78</IPADDRESS>

HTTP POST Request

Endpoint URL

Copy 
https://srs.segpay.com/adm.asmx/GetPostbackIPList

Request Headers

All request headers are required.

Header Value
Content-Type application/x-www-form-urlencoded
Content-Length Length
Host srs.segpay.com

Request Body

The request body should be formatted as x-www-form-urlencoded and contain the following required parameters:

Parameter Description
Userid The user ID for your Segpay account.
UserAccessKey The user ID for your Segpay account.
Copy
bash
Userid=jsegpay&UserAccessKey=Acce$$123
                

Response Format

Upon successful retrieval of postback IP addresses, the API will return an XML document with the following structure:

Copy 
<?xml version="1.0" encoding="utf-8"?>
                <DataSet xmlns="http://srs.segpay.com/ADM.asmx">
                <xs:schema id="NewDataSet" xmlns="" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:msdata="urn:schemas-microsoft-com:xml-msdata">
                <xs:element name="NewDataSet" msdata:IsDataSet="true" msdata:Locale="">
                <xs:complexType>
                <xs:choice minOccurs="0" maxOccurs="unbounded">
                <xs:element name="Table">
                <xs:complexType>
                <xs:sequence>
                <xs:element name="IPADDRESS" type="xs:string" minOccurs="0" />
                </xs:sequence>
                </xs:complexType>
                </xs:element>
                </xs:choice>
                </xs:complexType>
                </xs:element>
                </xs:schema>
                <diffgr:diffgram xmlns:msdata="urn:schemas-microsoft-com:xml-msdata" xmlns:diffgr="urn:schemas-microsoft-com:xml-diffgram-v1">
                <NewDataSet xmlns="">
                <Table diffgr:id="Table1" msdata:rowOrder="0">
                <IPADDRESS>170.55.6.66</IPADDRESS>
                </Table>
                <Table diffgr:id="Table2" msdata:rowOrder="1">
                <IPADDRESS>72.32.181.75</IPADDRESS>
                </Table>
                <Table diffgr:id="Table3" msdata:rowOrder="2">
                <IPADDRESS>72.32.60.190</IPADDRESS>
                </Table>
            </DataSet>

Code Examples

Copy

Python (using the requests library)

import requests

                url = "https://srs.segpay.com/adm.asmx/GetPostbackIPList"
                headers = {"Content-Type": "application/x-www-form-urlencoded", "Host": "srs.segpay.com"}
                data = {"Userid": "jsegpay", "UserAccessKey": "Acce$$123"}

                response = requests.post(url, headers=headers, data=data)

                print(response.status_code)
                print(response.text)
            

 

Copy

cURL (Command Line Interface)

curl -X POST -H "Content-Type: application/x-www-form-urlencoded" -H "Host: srs.segpay.com" -d "Userid=jsegpay&UserAccessKey=Acce$$123" https://srs.segpay.com/adm.asmx/GetPostbackIPList
            

Insert Merchant Fraud Email

The InsertMerchantFraudEmail request allows you to blacklist an email address, essentially adding it to list of blocked senders. When you use this request, the system will prevent transactions submitted by that email address.

Using this request does not globally block the email address in the Segpay system. If you have multiple accounts, you need to send requests for each of your accounts to block the email address.

HTTP Get Request

Use this URL to make the request. Replace each parameter stringwith your actual values.

Copy 
https://srs.segpay.com/adm.asmx/InsertMerchantFraudEmail?Userid=string&UserAccessKey=string&EmailAddress=string&ReasonCode=string&Comment=string

Parameters

List of parameters used with this HTTP request.

Parameter Description
UserID Your username to access Segpay Reporting Services (SRS).
UserAccessKey Your unique key to access Segpay Reporting Services (SRS).
EmailAddress The email address you want to block from future transactions on your account, including rebills.
ReasonCode

Provide the 3-digit reason code:

821 = Poor Quality
822 = No Access
823 = Site Down
824 = Fraud
825 = Tired of it
826 = Other
Comment Any other comments about why the email is blocked.

System Response

After submitting the request, the system sends one of the following responses:

Response Description
1 Record Inserted The system successfully blocked the email.
0 Records Inserted - must be a designated reason code The reason code provided is invalid.
0 Records Inserted - Email address already exists The email address provided is already blocked on this account.
Invalid Merchant - InsertMerchantFraudIPAddress Any other error condition not listed in this table. If you receive this response, email techsupport@segpay.com

Insert Merchant Fraud IP Address

The InsertMerchantFraudIPAddress allows you to blacklist an IP address, essentially adding it to list of blocked addresses. When you use this request, it prevents that IP address from accessing your site.

Using this request does not globally block the IP address in the Segpay system. If you have multiple accounts, you need to send requests for each of your accounts to block the IP address.

HTTP Get Request

Use this URL to make the request. Replace each parameter stringwith your actual values.

Copy 
https://srs.segpay.com/adm.asmx/InsertMerchantFraudIPAddress?Userid=string&UserAccessKey=string&IPAddress=string&ReasonCode=string&Comment=string

Parameters

List of parameters used with this HTTP request.

Parameter Description
UserID Your username to access Segpay Reporting Services (SRS).
UserAccessKey Your unique key to access Segpay Reporting Services (SRS).
IPAddress The IP address you want to block from future transactions on your account, including rebills.
ReasonCode

Provide the 3-digit reason code:

821 = Poor Quality
822 = No Access
823 = Site Down
824 = Fraud
825 = Tired of it
826 = Other
Comment Any other comments about why the IP is blocked..

System Response

After submitting the request, the system sends one of the following responses:

Response Description
Successful The system updated the amount successfully.
PurchaseID/MerchantID Mismatch The PurchaseID is invalid.
Membership not Active The subscription is not active.
Failed Any other error condition not listed in this table. If you receive this response, email techsupport@segpay.com